Category: Security
Tech Time Warp: Zotob worm wreaks havoc on the news
One way to make headlines is to go after the journalists themselves. On August 16, 2005, computers at CNN, ABC, The New York Times and The Associated Press were infected by the Zotob worm, along with machines at Caterpillar, and...
Pandemic cybersecurity in South Africa
The coronavirus has brought economic devastation to all parts of the world. As a journalist based in the United States, I understandably tend to focus on the United States. But it’s easy to become so focused on one’s home country that...
Cybersecurity Threat Advisory: Windows DNS Server RCE (CVE-2020-1350)
Advisory Overview A Remote Code Execution (RCE) vulnerability exists affecting Windows Domain Name System (DNS) Servers when they improperly handle requests. Successful exploitation of this vulnerability could allow attackers to execute code with SYSTEM level privileges. SKOUT recommends all organizations...
Seamless cybersecurity and two emerging threats
For most MSPs, the pandemic of 2020 has been a rush of implementing new policies and procedures while at the same time trying to keep customer cybersecurity fortifications intact. Wisconsin-based SWICKTech is an example of an organization that acted early to...
Lateral movement cyberattacks remain relevant
As the pandemic rages around the world and workers continue to hunker down remotely, it seems as everything has changed. Yet, in some ways, the old adage – the more things change, the more they stay the same – still...
In defense of MSP cybersecurity, as number of alerts rise
It seems like about once a month now some government agency somewhere discovers there might be a potential issue with the cybersecurity of a managed service provider (MSP). The latest warning comes from the U.S. Secret Service, which sent out...
Cybersecurity Threat Advisory: Cisco Small Business Switches RCE (CVE-2020-3297)
Advisory Overview Cisco Systems is warning its customers about a Remote Code Execution (RCE) vulnerability in its line of small business switches. Please be aware that end of life (EOL) products will not be patched (see table below). SKOUT advises...
Cybersecurity Threat Advisory: Citrix Vulnerabilities Affecting ADC, Gateway, and SD-WAN
Advisory Overview Citrix has issued a security patch for multiple gateway devices that were found to have security flaws. These security issues are reportedly unrelated to the previously released CVE-2019-19781. SKOUT advises updating any affected devices to the latest version....
Cybersecurity Threat Advisory: Spear-Phishing Campaign Spreading Hakbit Ransomware
Advisory Overview A spear-phishing campaign targeting various industries is utilizing malicious Microsoft Excel attachments to infect users with the “GuLoader” backdoor trojan. The threat actors then proceed to use GuLoader to download “Hakbit” ransomware onto the infected device. Recommendations to...
Summer cybersecurity dangers
In simpler times, some businesses would literally hang a sign on their door each summer saying “Gone Fishin’” and close for two weeks. In today’s world, hackers might as well hang a sign on their door in summer that says...